Likelihood to Recommend Trellix (FireEye + McAfee)
It’s a dedicated Network Advanced Threat Detection and Prevention solution. Easy maintenance and low operating costs fit perfectly for SMEs. Variety of appliance selection makes NX the perfect choice for large enterprises. As it’s a dedicated solution with its own appliance, price is higher compared to NGTP add on solutions. FireEye is an ecosystem therefore when you’ve the EX or HX vice versa, you should be looking to NX. Otherwise, you’re missing the threat intel exchange on the network side reverse is the true. Sizing is important before the purchase, if you select a low end model for a busy network you lose your initial investment. For multiple NX deployments I highly recommend CMS. Without CMS you’ll lose the threat intel exchange and this will negatively reduce the risk scores.
Read full review Zscaler Internet Access is an internet tunnel that pairs with the network adapter to secure traffic between servers and workstations. It can refresh policies automatically and log intrusions but does not broadcast intrusions. Cloud-based Zscaler Internet Access is easy to deploy and scale, with no hardware or software needed. In a hybrid model, Zscaler Internet Access performs some security functions on-premises and others in the cloud, allowing organizations to keep infrastructure. There is a slight learning curve from VPN and appliance architecture to this paradigm.
Read full review Pros Trellix (FireEye + McAfee)
Advanced detection of targeted attacks. Mandiant team effort is a big plus. Inline mitigation capabilities particularly well. Different deployment models for specific needs. License and information sharing selection 1 way or 2 way mode. Frequent updates. Low false positive rates. FireEye sandboxing is immune to sandboxing attacks. Central management (CMS) capabilities for managing several NX's. Extra IPS/IDS functionality in the product. Smartvision specific to lateral movement detection. Upgrades and updates with zero down time. Local FireEye support is superb. Multiple deployment scenarios (span, inline) in the same NX for different interface pairs. SSL inspection support. No need to maintain, build or updates the images. It's highly automatic. Read full review Zscaler completely moved away from the traditional firewall setup to a hosted firewall solution. We don't have to worry about the hardware failing or maintaining it as part of our service plan compared to our on-premise firewall. Zscaler has a lot of data centres across the world where they are maintaining their solutions so mobile consultants will always be close to one of their data centres. Rolling out Zscaler solutions to our end customers' computers is actually pretty easy and hassle-free. As part of onboarding of new employees we can set up the Zscaler solution and push it to our end users' machines and get them connected to the cloud solutions. Zscaler does proper market research on the latest emerging threats and they keep their firewall patched and updated to the latest versions so the security team does not have to worry about keeping the firewall updated. Read full review Cons Trellix (FireEye + McAfee)
Very first detected APT sample can pass the NX even it's inline blocking mode. Performance optimization for busy networks is cumbersome. CMS does not provide all the management capabilities, CLI or local config. Should be done for advanced customization. Constant limitations of tcpdump/ packet capture for 10G interfaces. IPS functionality is a bit cumbersome, not a full feature IPS, lack of signatures and customization of IPS signatures. It's not a full NDR solution or a UBA solution. Lack of device or user mapping. Forensics is based on the specific APT. May not provide the whole story and need some additional tools. You cannot make manual submission to NX (needs AX). You cannot access the kernel directly for deep analy[sis] or troubleshooting (assist from FireEye Support should be taken). Read full review Chat or email support is not available. Only option is to either call them or raise a ticket by logging into their website. Pricing is not transparent and quote based. Access to websites is a little too slow with Zscaler monitoring on. Read full review Usability Trellix (FireEye + McAfee)
Zscaler is a mandatory solution required by almost every large organization with a workforce working remotely or using cloud-based apps. Its deployment is relatively easy and it keeps on working in the background without actively bothering the user. Apart from a few weird messages which a user is unable to comprehend, Zscaler is able to provide fast and safe access to the internet and other external applications.
Read full review Support Rating Trellix (FireEye + McAfee)
I cannot give a fair rating for this as I have not had to contact Zscaler support. There was one time we had to contact them because we needed to check if they were having issues on their end. Our ISP was actually the problem but support seemed very friendly.
Read full review Alternatives Considered Trellix (FireEye + McAfee)
FireEye NX is a solid product. It gives you sustainable security throughout the organization. NX detection engines are more capable compared to others. Its catch rate is higher, FP rate is lower, [and] speed is awesome. NX can work for highly regulated environments with 1 way solution. Operation costs are much lower. Software quality is very good. It may have bugs, but these bugs do not compromise the security in general. SOC team loves the FireEye NX for its pinpoint detection capabilities. Local and partner support is exceptional.
Read full review Zscaler Intenet Access proved to be superior and the difference for us was the speed of policy delivery since your policy is applied in a web console and is effective in a matter of seconds. Another point to congratulate the solution is its compatibility with different platforms (macOS, Linux, Windows, Android, and iOS).
Read full review Return on Investment Trellix (FireEye + McAfee)
As [a] financial company on the digital markets, we need to be safeguard for 0days and targeted attacks. FireEye NX provides the best updated protection with its enhanced capabilities. Security score based on detection/prevention metrics [is] very high ensuring the highest level of security. APTs in our region successfully detected and mitigated by the NX. For the ROI, in a six month period FireEye is paying off its [investment]. One negative thing, especially with increasing network bandwidths, [is that] you need to make [the] investment every two or three years. Read full review ROI is there and it is safeguarding the data and user access to net. Being a cloud based can be scaled up when required. Third parties can be allowed based on the company IT policies (Clients or Vendors etc.) for business perspective. Read full review ScreenShots Trellix Network Security Screenshots